The latest Security podcast features Arti Lalwani, Risk Management and Privacy Knowledge Leader at A-LIGN, who discusses her career journey through auditing, risk and data privacy.

The survey gathers information about security budgets, numbers of security personnel, main concerns and responsibilities, and security missions and goals.

Data privacy legislation has popped up across the United States, largely regulated by individual states. The California Privacy Rights Act (CPRA) has wide-reaching effects for U.S. enterprise organizations.

Security teams have an unprecedented number of assets to inventory, manage and secure across a cloud-based organization, according to a new JupiterOne report. 

The White House urged private organizations to bolster their cybersecurity defenses, as intelligence suggests Russia is exploring options for potential cyberattacks to target U.S. critical infrastructure.

The Securities Exchange Commission (SEC) has released a draft rule on climate disclosure which requires companies to report their emissions, climate goals and risk assessment information.

Identity and access management company Okta is investigating a possible data breach after ransomware group Lapsus$ claimed to have hacked the company.

Researchers from the University of South Carolina received Department of Justice (DOJ) funding to investigate school safety and mental health in the "Interconnecting PBIS and School Mental Health to Improve School Safety: A Randomized Trial" study.

Ransomware as a service (RaaS) affiliate group AvosLocker has targeted a number of victims across multiple critical infrastructure sectors. Here are a few mitigation strategies organizations can implement. 

Ian Thornton-Trump, Chief Information Security Officer (CISO) at Cyjax, and Philip Ingram, CEO of Grey Hare Media, take a closer look at the Russian invasion of Ukraine through the lens of conflict in the Middle East in the tenth episode of The Cybersecurity and Geopolitical Podcast.